9 matches found
DEBIAN-CVE-2025-40906
BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several vulnerabilities. Those include CVE-2017-14227, CVE-2018-16790, CVE-2023-0437, CVE-2024-6381, CVE-2024-6383, and CVE-2025-0755. BSON-XS was the official Perl XS implementation of MongoDB's BSON...
Ubuntu: Security Advisory (USN-4812-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4812-1 libbson vulnerabilities
It was discovered that libbson incorrectly validated input length. An attacker could possibly use this issue to cause a denial of service. This issue affected only Ubuntu 16.04 ESM. CVE-2017-14227 It was discovered that libbson incorrectly handled certain specially crafted bson buffers. An attack...
Fedora 28 : libbson (2018-2062cd7548)
This release fixes a heap-based buffer over-read when parsing a mallformed BSON document CVE-2018-16790. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
Fedora 27 : libbson (2018-77d864ff39)
This release fixes a heap-based buffer over-read when parsing a mallformed BSON document CVE-2018-16790. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...
Fedora Update for libbson FEDORA-2018-2062cd7548
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-16790
bsoniternextinternal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer...
CVE-2018-16790
bsoniternextinternal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer...
CVE-2018-16790
CVE-2018-16790 affects libbson 1.12.0 (used by MongoDB’s libbson and the mongo-c-driver). The vulnerability is a heap-based buffer over-read triggered by a crafted BSON buffer in bson_iter_next_internal, as described for libbson 1.12.0. This can impact applications that consume BSON via the affec...